Monthly Archives: June 2016

FraudBL is, since june 22, an active resolver. Tornevall Networks has in active for tests and currently we’ve seen a positive result of the activation. More information about bitmasking will in short get updated at http://docs.tornevall.net/x/AoA_/. In short, we will also activate the new default database for dnsbl.tornevall.org.

FraudBL is currently up and running and while we are typing this post, we are collecting spam from ”phishing sites”. As we are counting, approximately 1200 hosts are flagged ”phishing” in our database. In short, this database will get a zone update so we can start using it. What we are actually waiting for is dnsbl.tornevall.org and the last migration steps.

Our primary network link went down yesterday. It has been reported, but it seems like it will take a little bit longer to fix this time. However, we’re not completely down, since we switched over to our backup route while we are waiting.

For three years ago (june 2013) we decided to remove the substructure opm.tornevall.org, from the DNSBL. Statistics, however, shows that opm are still in use. And in fact traffic seems to increase, from those resolvers. They are therefore reinstated, even if there will be double entries of each blacklisted host.

Our honeypot have also begun to catch e-mail on a new level. Messages containing traces of phishing and fraud will be flagged differently from the regular lookups. This refactoring and migrating to the new system are not finished yet, so bit-flags are not considered yet. However, our new domain for phishing – FraudBL – may be useful here.

And do not forget: As long as the migration is not finished, we will continue remove your blacklisted hosts manually, with as high SLA as possible. In that case, we still use the support address dnsbl@tornevall.org